Information Security Manager - ISM

Req ID: 289483 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Information Security Manager - ISM to join our team in Mexico City, Ciudad de México (MX-CMX), Mexico (MX).

Role Overview

The NTT DATA Services Information Security Manager (ISM) oversees and coordinates the information security services that NTT DATA provides to the customer.  This is an individual contributor role in which the ISM acts as a trusted information security partner with the customer and works collaboratively to understand, anticipate and recommend risk mitigation while promoting the overall information security protection for the customer’s information assets.  You will partner with the client to align information security with the customer’s business strategy, security policies and regulatory and compliance requirements resulting in increased protection and reduced risk.  In this role, the ISM works with stakeholders and teams across the organization to help deliver information security services.

Role Responsibilities:

The responsibilities of the ISM include:

• Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
• Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of client’s environment and data
• Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
• Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organization
• Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
• Participate in internal and external audits for the customer (e.g., PCI, SOX) and coordinate information security services activities
• Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
• Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
• Participate and represent IT Security in Delivery/Operational meetings; conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performance
• Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are being met; provide direction on ticket remediation and ensure remediation is complete
• Conduct an ongoing security awareness program for NTT DATA personnel supporting the customer ensuring individuals understand and are compliant with the relevant information security obligations in support of the customer; program should address relevant security topics and adequately provide guidance on security policies and supporting documentation
• Cultivate trusted partner relationships with account and customer; keep consistent and open dialogue to uncover issues, challenges, risks
• Maintain an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy

Required Qualifications:

• 8+ years of relevant experience
• Strong knowledge of standards / regulations impacting information security (e.g., PCI, HIPAA, SOX)
• Experience with information security internal & external audits, contract compliance, and quality initiatives
• Significant experience in identifying and utilizing a global risk-based management model.
• 3+ years working on On-prem and Cloud Infrastructure.
• Strong Knowledge Cloud-Security-Azure AD / AD
• 5+ years Security Operations
• 3+ years Cloud Security Operations
• 3+ years Business Analysis – Information Security Active Directory

Preferences:

• At least one of the following certifications: CISSP, CISM, CCSP
• Undergraduate or graduate degree
• Security/Consulting industry experience working in a customer facing role with customer relationship management experience at the senior level
• Familiarity with information security technologies and issues on multiple platforms
• Significant experience in application and integration of globally accepted security standards
• Advanced knowledge of server and desktop configurations that will protect systems from unauthorized access and software invasion
• Strong understanding of networking technologies
• Advanced knowledge of network security that pertains to communications, computer system environments and related infrastructures

#LI-LATAM

About NTT DATA

NTT DATA is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients’ long-term success. Visit nttdata.com or LinkedIn to learn more.

NTT DATA is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.